Re: Multihomed domain.

Tech-Archive recommends: Fix windows errors by optimizing your registry


'Ace Fekay [Microsoft Certified Trainer Wrote:
;4447475']"DavidIT" <DavidIT.3t9nvd@xxxxxxxxxxxxx> wrote in message
news:DavidIT.3t9nvd@xxxxxxxxxxxxxxxx

Hi again Ace,

I tried changing the dns server for 192.168.1.1 for both interfaces,
still no success..

As for the DHCP, it's just a member server. It is not on the domain
controller.

We have only one physical NIC, the second is a virtual one from
OpenVPN, the reason for it, is that we need all the traffic to be
encrypted into the OpenVPN NIC interface (using certificates).

And we don't have a router in this.

client <-> switch <-> domain controller

Thanks

Hi David,

I didn't see a response concerning the domain name. Is it single label?
(see
my other post for an explanation).

I don't know how OpenVPN works, but if it is anything like RRAS, where
it
creates additional interfaces, well, that can be problematic on a
domain
controller. If this is the case, you'll need to follow my steps to
alter the
domain controller's default functionality to eliminate the additional
interface(s) from registering into DNS, otherwise there will be
multiple IPs
registering for the same name in DNS, which makes it problematic.

Ace

About the domain name, it's single label, domain name is : domainname
(without any dot)

I'm not quite sure too how OpenVPN works for its encryption, but I know
for sure that everything is encrypted/decrypted (I tried to see the
traffic with wireshark and it was encrypted). Indeed, it creates an
additional interface, in my case (TAP-Win32 Adapter V9).

I can say that the DNS server listen to this interface (TAP-Win32
Adapter V9) which ip is 192.168.1.1. The workstation that can't join
the domain, is able to use nslookup here's the output :

nslookup.exe
Default server : server01
Address : 192.168.1.1

server01.domainname
Serveur : server01
Address : 192.168.1.1

Name : server01.domainname
Address : 192.168.1.1

Are there special tests I should do to verify that the DNS server works
properly to be able to join the domain?

Thanks!


--
DavidIT
------------------------------------------------------------------------
DavidIT's Profile: http://forums.techarena.in/members/102629.htm
View this thread: http://forums.techarena.in/active-directory/1189911.htm

http://forums.techarena.in

.

Relevant Pages

  • Re: DNS problems going out
    ... > You enable the DNS server on both interfaces from the DNS Server ... > between your LAN and the Internet? ... > 2) Do you have a valid IP address on the external interface? ... >> Original Client IP Client Agent Authenticated Client Service Server Name ...
    (microsoft.public.isa)
  • Re: DNS problems going out
    ... You enable the DNS server on both interfaces from the DNS Server management ... between your LAN and the Internet? ... Do you have a valid IP address on the external interface? ... > Original Client IP Client Agent Authenticated Client Service Server Name ...
    (microsoft.public.isa)
  • Re: trouble with dynamic IP and dyndns host
    ... | Router PIX501 with os 3.7 ... | DynDNS hostname: myhost.dyndns.org ... | From outside interface I can access all the services with no trouble. ... Perhaps you can set a dns server value in your PIX and set bidirectional ...
    (comp.dcom.sys.cisco)
  • Re: Network Problems and DNS
    ... > will cause the dial in to adopt 10.0.0.2 as its DNS server and keep DNS ... > this is if you bind file sharing to this you are binding file sharing to a ... > publicly available interface. ...
    (microsoft.public.windows.server.dns)
  • Re: [Full-Disclosure] Full-Disclosure digest- good reverse dns server
    ... > does any one know of a free reverse dns server that's good? ... >and then routed on the backbone unencrypted to sites that don't use encryption or parts of sites that don't? ... providers gateway would gain you nothing. ...
    (Full-Disclosure)